Hi,
Can somebody tell me the expected issues when the secret for a Client is
misconfigured? We had an issue with some NAS’ not able to connect to the
Freeradius, and it appears as if the only we changed was the corresponding
secrets. Are NAS’ with mis-matched secrets dropped
On 05/27/2011 09:04 PM, Francois Gaudreault wrote:
Hi,
I had a look at this issue with him since he is one of our client.
Machine authentications are working flawlessly, windows 7 authentication
as well (no hostname is sent with the username).
I honestly lost track of this issue; the guy had
DC: 192.168.1.4 or Server11
Wireless Access Point: 192.168.1.251
SSID: jump
I have hit a brickwall and am having a really hard time getting through
this last stretch. This is my first time trying to setup freeradius and
still trying to wrap my head around a couple of things. I am trying to
On 05/28/2011 02:30 PM, e...@mixeduperic.com wrote:
[ldap] expand:
�??((sAMAccountName=%{Stripped-User-Name:-%{User-Name}}))�?? -
�??((sAMAccountName=TEC\5cuser1))�??
[ldap] expand: �??cn=users,dc=TEC,dc=local�?? -
�??cn=users,dc=TEC,dc=local�??
rlm_ldap: ldap_get_conn: Checking Id: 0
Hi Phil, and Alan,
I will get you the debug output for Windows XP SP3 boxes (likely Monday).
I will summarise what we have. Basically, this is a setup where the
client is using eDirectory to authorize the users using the rlm_ldap
module. On the windows boxes, it is configured to do PEAP
e...@mixeduperic.com wrote:
I have tried following both these two
guides:
http://www.perkinsblog.net/blog/index.php/2010/02/freeradius-and-windows-ad/
I'm always amazed at the work people put into things. He spent tons
of time googling for help, when the next URL is linked from the wiki,
O'Neil, Donald A. wrote:
1) The wireless AP's I'm going to be connecting to the RADIUS server
have multiple SSID'd... can I pass that SSID information to Free Radius
and then map the group based on the SSID?
Look at the debug output. Which attribute has the SSID?
2) If I were to define a
Thanks for the input, Was not sure if I needed Ldap. Didn't know if it was
there as a replica in-case a DC went down. On Tuesday I will go back and
clean some things up and remove ldap from the picture. Then start tweeking
it to be more and locked it down some more. Thanks again for the help!
Hi,
Here is the complete debug log :
rad_recv: Access-Request packet from host 10.220.30.5 port 29010,
id=194, length=179
User-Name = STIC08862\\TechRMC
NAS-IP-Address = 10.220.30.5
NAS-Port = 0
Called-Station-Id = 58-16-26-AA-F7-A1:AVAYA-RESEAU
9 matches
Mail list logo